CVE-2023-38647 | Apache Helix up to 1.2.0 JAR deserialization

A vulnerability, which was classified as problematic, has been found in Apache Helix up to 1.2.0. This issue affects some unknown processing of the component JAR Handler. The manipulation leads to deserialization.

The identification of this vulnerability is CVE-2023-38647. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38647 | Apache Helix up to 1.2.0 JAR deserialization